Summary A new piece of malware called LilyJade spreads through Facebook and can infect computers across browsers and across platforms. LilyJade was created using a Javascript cross-browser extension framework known as Corssrider, a legitimate programming framework used to create unified browser extensions for Internet Explorer, Firefox and Google Chrome. Support for Safari is expected to be available soon. LilyJade appears to be created to launch click fraud schemes and is being sold on underground forums for $1,000. No antivirus program is designed to detect it. LilyJade was identified by security researchers from Kaspersky Labs and spreads by using infected browsers to piggyback on active Facebook sessions, sending spam messages with link to a location where a location where a user can be infected in the name of authenticated users.
The use of social networks by malware has been a challenge for IT security, providing one more route by which malware can potentially infect a local network since most employees can access social media at work. This malware, LilyJade, seems to be harmless to infected computers at the moment but since no anti- virus is designed to look for this and this malware uses social networks to propagate, LilyJade can spread rapidly and easily infect users. There are, however, still several ways to prevent infection. IT and network managers must manage and secure new network entry points created via the use of social media by enabling a secure firewall on your computer, getting the latest computer updates for all your installed software, and using up-to-date antivirus software. Another important fact we should know is that user awareness is key and awareness training should be a part of every corporate security program. Employees should be cautious when opening attachments and accepting file transfers and when clicking on links to webpages. One of the important things is that social networking controls should be included to the standard IT security measures.
A new piece of malware called LilyJade spreads through Facebook and can infect computers across browsers and across platforms. LilyJade was created using a Javascript cross-browser extension framework known as Corssrider, a legitimate programming framework used to create unified browser extensions for Internet Explorer, Firefox and Google Chrome. Support for Safari is expected to be available soon. LilyJade appears to be created to launch click fraud schemes and is being sold on underground forums for $1,000. No antivirus program is designed to detect it. LilyJade was identified by security researchers from Kaspersky Labs and spreads by using infected browsers to piggyback on active Facebook sessions, sending spam messages with link to a location where a location where a user can be infected in the name of authenticated users.
The use of social networks by malware has been a challenge for IT security, providing one more route by which malware can potentially infect a local network since most employees can access social media at work. This malware, LilyJade, seems to be harmless to infected computers at the moment but since no anti- virus is designed to look for this and this malware uses social networks to propagate, LilyJade can spread rapidly and easily infect users. There are, however, still several ways to prevent infection. IT and network managers must manage and secure new network entry points created via the use of social media by enabling a secure firewall on your computer, getting the latest computer updates for all your installed software, and using up-to-date antivirus software. Another important fact we should know is that user awareness is key and awareness training should be a part of every corporate security program. Employees should be cautious when opening attachments and accepting file transfers and when clicking on links to webpages. One of the important things is that social networking controls should be included to the standard IT security measures.
40/40